Win32/Bundpil.AC removal guide

The Win32/Bundpil.AC is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Win32/Bundpil.AC virus can do?

Sample contains Overlay data
Authenticode signature is invalid

How to determine Win32/Bundpil.AC?


File Info:
name: B94A481D1588B15745D4.mlw
path: /opt/CAPEv2/storage/binaries/5783285ea6ae52c08950761addb6d07d97ff930a48e94bd395a755db4d0da474
crc32: 8975E3B5
md5: b94a481d1588b15745d4e9fa59867576
sha1: 7ac7c65fe32a6ea6a377efbc0ce34ae67b75e3c1
sha256: 5783285ea6ae52c08950761addb6d07d97ff930a48e94bd395a755db4d0da474
sha512: 4608c7d16b0e32a3a31b0d7becca3984d0955535edba95423fbd5076d8ea84842dcf01e613c95f24c5a3ad2b1d9fd262a5319a288db05266b9e6a8e77af4c6bf
ssdeep: 48:a5zjMTGcITBVQVE1lcIO9fVrKYy2XQceli6I+LRLdD:iT3Qu8XNU3s6I+L7
type: PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
tlsh: T173A1F75F62352FB3D05C8B73358B22D3392E861417A9870E88442B0A217223BCD7DF52
sha3_384: c822f8c3571b6891e5a9dda2b7ecc9264728630fafee62a3b3d7864cf73db013c07bef281e5802a77f0a0fb34a2066c0
ep_bytes: 558bec538b5d08568b750c578b7d1085
timestamp: 2013-04-17 17:30:05

Version Info:
0: [No Data]

Win32/Bundpil.AC also known as:

Bkav	W32.FamVT.Bundpil.Worm
Lionic	Worm.Win32.Debris.mrOS
AVG	Win32:AutoRun-CYY [Wrm]
DrWeb	Trojan.MulDrop4.25343
MicroWorld-eScan	Gen:Variant.Barys.431082
FireEye	Generic.mg.b94a481d1588b157
CAT-QuickHeal	Trojan.Agent.WL
Skyhigh	BehavesLike.Win32.Worm.xt
McAfee	Obfuscated-FGA!hb
Malwarebytes	Generic.Malware.AI.DDS
Zillya	Worm.Autorun.Win32.98023
Sangfor	Suspicious.Win32.Save.ins
K7AntiVirus	EmailWorm ( 0040f50c1 )
Alibaba	Worm:Win32/Bundpil.5df130cc
K7GW	EmailWorm ( 0040f50c1 )
CrowdStrike	win/malicious_confidence_100% (W)
BitDefenderTheta	Gen:NN.ZedlaF.36802.aq5@a4RqLqb
VirIT	Worm.Win32.Generic.FAI
Symantec	W32.Dromedan
Elastic	malicious (high confidence)
ESET-NOD32	Win32/Bundpil.AC
Cynet	Malicious (score: 100)
APEX	Malicious
Avast	Win32:AutoRun-CYY [Wrm]
ClamAV	Win.Adware.Downware-245
Kaspersky	Worm.Win32.Bundpil.atg
BitDefender	Gen:Variant.Barys.431082
NANO-Antivirus	Trojan.Win32.Bundpil.cqkxlg
Tencent	Trojan.Win32.Csyr.A
Emsisoft	Gen:Variant.Barys.431082 (B)
F-Secure	Trojan.TR/Downloader.Gen
Baidu	Win32.Worm.Bundpil.ak
VIPRE	Gen:Variant.Barys.431082
TrendMicro	WORM_GAMARUE.SMB
Trapmine	malicious.high.ml.score
Sophos	Troj/Bundpil-C
Ikarus	Trojan.SuspectCRC
Jiangmin	Trojan/Generic.avutv
Google	Detected
Avira	TR/Downloader.Gen
MAX	malware (ai score=100)
Antiy-AVL	Worm/Win32.Bundpil.atg
Kingsoft	malware.kb.a.928
Microsoft	Worm:Win32/Gamarue.N
Xcitium	Worm.Win32.BundPil.LAS@4woog5
Arcabit	Trojan.Barys.D693EA
ViRobot	Worm.Win32.Agent.4484
ZoneAlarm	Worm.Win32.Bundpil.atg
GData	Win32.Trojan.PSE1.1B49MNE
Varist	W32/Csyr.A!Eldorado
AhnLab-V3	Worm/Win32.Gamarue.R63170
Acronis	suspicious
ALYac	Gen:Variant.Barys.431082
VBA32	Trojan.Agent.2407
Cylance	unsafe
Panda	Trj/Downloader.WKR
TrendMicro-HouseCall	WORM_GAMARUE.SMB
Rising	Worm.Win32.Debris.c (CLASSIC)
Yandex	Trojan.GenAsa!gpxJompsY9Q
SentinelOne	Static AI – Malicious PE
MaxSecure	Worm.W32.Bundpil.atg
Fortinet	W32/Generic!tr
DeepInstinct	MALICIOUS
alibabacloud	Worm:Win/Bundpil.AC

How to remove Win32/Bundpil.AC?

Win32/Bundpil.AC removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X